Hugging Face's logo

Spaces:
louiecerv
/
autheticate_with_hf
Sleeping

App Files Community
autheticate_with_hf
File size: 2,762 Bytes 
c2c6992
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
 
import streamlit as st
import requests
import os
import json
import urllib.parse
from dotenv import load_dotenv

# Load environment variables (if using a .env file)
load_dotenv()

# Hugging Face OAuth Credentials
CLIENT_ID = os.getenv("HUGGINGFACE_CLIENT_ID")
CLIENT_SECRET = os.getenv("HUGGINGFACE_CLIENT_SECRET")
REDIRECT_URI = os.getenv("HUGGINGFACE_REDIRECT_URI")

# Hugging Face OAuth URLs
AUTHORIZATION_URL = "https://huggingface.co/oauth/authorize"
TOKEN_URL = "https://huggingface.co/oauth/token"
USER_INFO_URL = "https://huggingface.co/api/whoami-v2"

# Streamlit Session State to Track User
if "user" not in st.session_state:
    st.session_state.user = None

def get_authorization_url():
    """Generate the Hugging Face authorization URL."""
    params = {
        "response_type": "code",
        "client_id": CLIENT_ID,
        "redirect_uri": REDIRECT_URI,
    }
    return f"{AUTHORIZATION_URL}?{urllib.parse.urlencode(params)}"

def exchange_code_for_token(auth_code):
    """Exchange authorization code for an access token."""
    data = {
        "grant_type": "authorization_code",
        "code": auth_code,
        "client_id": CLIENT_ID,
        "client_secret": CLIENT_SECRET,
        "redirect_uri": REDIRECT_URI,
    }
    response = requests.post(TOKEN_URL, data=data)
    return response.json()

def get_user_info(access_token):
    """Fetch user details from Hugging Face API."""
    headers = {"Authorization": f"Bearer {access_token}"}
    response = requests.get(USER_INFO_URL, headers=headers)
    return response.json()

def main():
    # Display App Title
    st.title("Sign In with Hugging Face")

    # Check if user is logged in
    if st.session_state.user:
        st.success(f"Logged in as **{st.session_state.user['name']}**")
        st.image(st.session_state.user['avatar'], width=100)
        if st.button("Logout"):
            st.session_state.user = None
            st.experimental_rerun()
    else:
        auth_url = get_authorization_url()
        st.markdown(f"[![Sign in with Hugging Face](https://huggingface.co/front/assets/huggingface_logo-noborder.svg)]({auth_url})")

    # Capture OAuth Redirect URL with Auth Code
    query_params = st.query_params
    if "code" in query_params:
        auth_code = query_params["code"][0]
        token_data = exchange_code_for_token(auth_code)

        if "access_token" in token_data:
            user_info = get_user_info(token_data["access_token"])
            st.session_state.user = {
                "name": user_info.get("name", "Unknown User"),
                "avatar": user_info.get("avatar", ""),
            }
            st.rerun()
        else:
            st.error("Failed to authenticate with Hugging Face.")

if __name__ == "__main__":
    main()